robots.txt prevent certain spiders / bots to scan your site.

Put this into robots.txt in the root of your site:

User-agent: Rogerbot 
User-agent: Exabot 
User-agent: MJ12bot 
User-agent: Dotbot 
User-agent: Gigabot 
User-agent: AhrefsBot 
User-agent: BlackWidow 
User-agent: Bot [EMAIL="craftbot@yahoo.com"]mailto:craftbot@yahoo.com[/EMAIL] 
User-agent: ChinaClaw 
User-agent: Custo 
User-agent: DISCo 
User-agent: Download Demon 
User-agent: eCatch 
User-agent: EirGrabber 
User-agent: EmailSiphon 
User-agent: EmailWolf 
User-agent: Express WebPictures 
User-agent: ExtractorPro 
User-agent: EyeNetIE 
User-agent: FlashGet 
User-agent: GetRight 
User-agent: GetWeb! 
User-agent: Go!Zilla 
User-agent: Go-Ahead-Got-It 
User-agent: GrabNet 
User-agent: Grafula 
User-agent: HMView 
User-agent: HTTrack 
User-agent: Image Stripper 
User-agent: Image Sucker 
User-agent: Indy Library
User-agent: InterGET 
User-agent: Internet Ninja 
User-agent: JetCar 
User-agent: JOC Web Spider 
User-agent: larbin 
User-agent: LeechFTP 
User-agent: Mass Downloader 
User-agent: MIDown tool 
User-agent: Mister PiX 
User-agent: Navroad 
User-agent: NearSite 
User-agent: NetAnts 
User-agent: NetSpider 
User-agent: Net Vampire 
User-agent: NetZIP 
User-agent: Octopus 
User-agent: Offline Explorer 
User-agent: Offline Navigator 
User-agent: PageGrabber 
User-agent: Papa Foto 
User-agent: pavuk 
User-agent: pcBrowser 
User-agent: RealDownload 
User-agent: ReGet 
User-agent: SiteSnagger 
User-agent: SmartDownload 
User-agent: SuperBot 
User-agent: SuperHTTP 
User-agent: Surfbot 
User-agent: tAkeOut 
User-agent: Teleport Pro 
User-agent: VoidEYE 
User-agent: Web Image Collector 
User-agent: Web Sucker 
User-agent: WebAuto 
User-agent: WebCopier 
User-agent: WebFetch 
User-agent: WebGo IS 
User-agent: WebLeacher 
User-agent: WebReaper 
User-agent: WebSauger 
User-agent: Website eXtractor 
User-agent: Website Quester 
User-agent: WebStripper 
User-agent: WebWhacker 
User-agent: WebZIP 
User-agent: Wget 
User-agent: Widow 
User-agent: WWWOFFLE 
User-agent: Xaldon WebSpider 
User-agent: Zeus
Disallow: /

Posted in security | Comments Off on robots.txt prevent certain spiders / bots to scan your site.

Passwords – Longer is better

The choice of passwords is often a source of plenty of deliberation. Make it too simple and you will get hacked (check your password for safety here: https://howsecureismypassword.net/) make it too complicated and you cannot remember it and have to write it down.

There are some basic NO NO rules:

1. NEVER write your passwords down
2. NEVER use the same password for different things
3. NEVER simply use your name or date of birth or any other easy to guess passwords (https://nakedsecurity.sophos.com/2010/12/15/the-top-50-passwords-you-should-never-use/)

When you follow these 3 simple rules you are starting to get into the safer zone for online security.

So how do you get a secure AND easy to remember password? 

Here are some ways to do this:

• You pick a sentense you can remember (Just make sure it is not a simple phrase or a phrase taken from existing literature, because that would make it insecure again.) and only use the first 2 characters of each word:

  The chicken is riding on the roof of the bus = Thchisrionthroofthbu

You could also replace o with 0 (zero), e with 3, b with 8 or & and i with 1
Thch1sr10nthr00fth8u

and this looks like a very secure password. And when you add some special characters !@#$%^&*()_-+= you are getting really save.

• Generate a pronounceable password: http://support.blue.net.au/passwordgenerator/   https://passwds.ninja/ or find another generator online https://goo.gl/e8IS6f  They will make passwords like:

cugobuco90
xocivazu85
tudovike47
Xepnym82
etc

• Password card (http://www.passwordcard.org/en) is a card with random passwords. You can use the passwords on it in any combination. Forwards, backwards, diagonally, every second character, start 3 characters in on the 5th row then diagonally up and right or any other way you can think up and remember.

This way you don’t need to remember your passwords. You just need to remember which way your password is written on the card and it is secure because nobody knows how you are using that card, as long as you NOT simply use them line by line as they are printed on the card. That would be too easy and the only danger with this method. SO AVOID IT.

• Password manager. I personally use and recommend https://www.lastpass.com/ . I generate passwords very long and randomly with Lastpass and then safe them in there to be kept save with only the one master password I need to remember to access the password manager.

All these are good ways to make you safer online. Good luck.

Posted in security | Comments Off on Passwords – Longer is better